Privacy Policy

Skivyy.com ("Skivyy", "we", "our", "us") is committed to transparent, lawful data practices. This Privacy Policy explains how we collect, use, disclose, sell/share, retain, protect, and transfer personal information when you visit skivyy.com, our apps, or use our services (the "Platform").

By using the Platform, you consent to the practices described here, subject to your rights under applicable laws. If you do not agree, please discontinue use.

Provide and improve services (Contract/Legitimate Interests): operate the Platform, match candidates with roles, administer certifications, and deliver Pro features.

Integrity and security (Legitimate Interests/Legal Obligation): fraud prevention, access control, auditing, and incident response.

Marketing and personalization (Consent/Legitimate Interests): recommendations, emails, push, and onsite content. Opt-out anytime.

Payment processing (Contract/Legal Obligation): process transactions via PCI-DSS compliant processors; prevent fraud and resolve disputes.

Compliance (Legal Obligation): recordkeeping, sanctions/AML screening where applicable, regulatory reporting.

Research and product development (Legitimate Interests): analytics, A/B tests, new features, and quality assurance.

Sale/Share (as defined by CCPA/CPRA): We may sell or share certain personal information to employers and select partners to facilitate recruiting, placements, and marketing. Categories may include identifiers, professional info, inferences, and usage data. You may opt out where required (Do Not Sell or Share My Personal Information).

Employers and recruiters: profiles, resumes, certifications, assessments, and contact information when you apply or opt in to visibility.

Service providers (processors): cloud hosting, analytics, support tools, proctoring vendors, and payment processors under contractual safeguards.

Advertising and analytics partners: pseudonymous identifiers and events for ads and measurement, subject to your preferences.

Legal and safety: disclosures to comply with law, protect rights, investigate fraud/abuse, or respond to lawful requests.

Business transfers: mergers, acquisitions, financings, or asset sales, subject to this Policy's protections.

Controls: encryption in transit/at rest, role-based access controls, least-privilege, network segmentation, and logging.

Governance: security training, vendor diligence, incident response plans, vulnerability management, and periodic audits.

Important: No system is perfectly secure; please use strong passwords and enable available protections.

Schedules: We retain personal data only as long as needed: account and profile (active use), certifications (validity period + audit window), billing records (7 years or as required), security logs (12–24 months), and proctoring media (as needed for integrity/audits, then deleted or anonymized).

Deletion: We delete or anonymize data when no longer needed, except where law requires retention or for legitimate interests (e.g., fraud prevention).

Third-Party Links: Our site may contain links to third-party websites. We are not responsible for their privacy practices.

Integration Services: We may integrate with third-party services (e.g., Google Analytics, payment processors) that have their own privacy policies.

Social Media: Features like social media sharing buttons may collect information about your visit.

We may update this Privacy Policy periodically. Material changes will be communicated via email or in-product notices. Continued use after changes indicates acceptance.